[ https://issues.apache.org/jira/browse/QPID-8302?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Alex Rudyy updated QPID-8302: ----------------------------- Description: NonJavaKeystore does not validate whether private key and certificate are matching on certificate update. In result of human error the certificate can be updated to the wrong one and after broker restart the TLS stops working. The validation should be improved to verify that private key matches the certificate (was: NonJavaTrustore does not validate whether private key and certificate are matching on certificate update. In result of human error the certificate can be updated to the wrong one and after broker restart the TLS stops working. The validation should be improved to verify that private key matches the certificate) > [Broker-J] NonKeystoreTrustore does not validate private key and certificate > matching on certificate update > ----------------------------------------------------------------------------------------------------------- > > Key: QPID-8302 > URL: https://issues.apache.org/jira/browse/QPID-8302 > Project: Qpid > Issue Type: Bug > Components: Broker-J > Affects Versions: qpid-java-broker-7.1.2 > Reporter: Alex Rudyy > Priority: Major > Fix For: qpid-java-broker-8.0.0, qpid-java-broker-7.1.3 > > > NonJavaKeystore does not validate whether private key and certificate are > matching on certificate update. In result of human error the certificate can > be updated to the wrong one and after broker restart the TLS stops working. > The validation should be improved to verify that private key matches the > certificate -- This message was sent by Atlassian JIRA (v7.6.3#76005) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org